Software development is evolving into a streamlined process with low code/no code solutions and powerful APIs, making app creation more convenient. However, amidst this, data privacy often takes a backseat. Rather than solely relying on DLP measures, the focus should shift to addressing the root cause in the code itself. Imagine applications with inherent privacy features, detecting and preventing violations pre-deployment. This involves using static code analysis to build control flow graphs, tracking data flows from source to end function sinks, such as database writes or API calls. The talk explores the use of open-source static code analysis tools for detecting privacy issues in application code.